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Claims 

What is claimed is: 

1 . A method for ol^aining status of public key certificate updates, the method 
5 comprising the steps of: 

a) from time to time, prJ^viding public key certificate update subscription 
information to a server; 

10 b) providing an indication oAa local replica of current public key certificate to the 
server while on-line with the serve* 

M 

P c) receiving an indication of updated public key certificate from the serve when the 

g updated public key certificate is inconsi\tent with the local replica of the current public 

*^ 15 key certificate; and 

m 

y . . ..... /V — 

■ d) while on-line, receiving an indication>pf ne^ly updated public key certificate from 

M the server, wherein the newly updated publit l^^)s.ertificate relates to information of 

ru J; 

P interest as identified in the public key certificateVipdate subscription information. 
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2. The method of claim 1 further comprises acknowledging receipt of the indication 
of the updated public key certificate. 

3. The method of claim 1 fiirther comprises providWg the public key certificate 
25 update subscription information to include identity of at le^ast one subscriber subject and a 

public key of the at least one subscriber subject. 

4. The method of claim 1 further comprises providing th^public key certificate 
update subscription information to include at least one of: signature public key certificate 



of at least one subscriBer subject and an encryption public key certificate of the at least 
one subscriber subject. \ 

5. The method of claim \ further comprises, within step (d), receiving, as the 
indication of the newly updatea\public key certificate, at least one of: a new public key 
certificate for a subscriber subject^a revocation of a public key certificate of the 
subscriber subject, a change to the pVblic key certificate of the subscriber subject, 
(encryption or signature certificate) \^ 

6. The method of claim 1 further cornWises, within step (b), providing the indication 
of the local replica as at least one of: a copyVf the current public key certificate and a 
message indicating the current public key certificate . 

7. The method of claim I further comprises, within step (c), receiving the updated 
public key certificate as at least one of: updates to the current public key certificate and a 
message regarding updates to the current public key certificate. 

\ 
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8. A method for providing public key certificate updates, the method comprises the 
steps of: 

a) from time to time, receiving a pubHc key certificate update subscription 
5 information from a user, wherein the pubHc key certificate update subscription 

information identifies at least one subscriber subject and a public key of the at least one 
subscriber subject; 
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b) monitoring public key certificate of the at least one subscriber subject; and 



c) when a change occurs to the public key certificate, providing an indication of the 



change to the user 

7 a \ 



0 9. The method of claim S^urther comprises: 

15 

receiving an indication of a user r^lica of the public key certificate from the user, when 
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« the user is on-line; 
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determining whether the user replica of the public key certificate is consistent with server 



Q 20 replica of the public key certificate; and 

when the user replica of the public key certifurare isHnconsistent with the server replica of 
the public key certificate, providing an indication \f the server replica of the public key 
certificate to the user. 



10. The method of claim 9 further comprises providing the indication as at least one 
of: the server replica of the current public key certificate and an encoded message 
identifying differences between the user replica of the public i^ey certificate and the server 
replica of the public key certificate. 
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11. The method of claim 8 further comprises, within step (c), providing the indication 
as at least one of: an encoded message identifying the change to the public key certificate 
of the at least one subscriber subject. 

12. The method of claim 8 further comprises, within step (b), monitoring the public 
key certificate by pulling the public key certificate of the at least one subscriber subject 
from a certification authority. 

13. The method of claim 8 further comprises receiving information to change the 
public key certificate of the at least one subscriber subject. 

14. The method of claim 8 further comprises, within step (a) receiving from an end- 
user or system administrator the public key certificate update subscription information. 
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15. A method for obtaining public key certificate updates, the method comprising the 
steps of: 

a) from time to time, providing, by a user, public key certificate update subscription 
information to a server, wherein the public key certificate update subscription information 
identifies at least one subscriber subject and a public key of the at least one subscriber 
subject; 

b) monitoring, by the server, public key certificate of the at least one subscriber 
subject; 

c) when a change occurs to the public key certificate, providing, by the server, an 
indication of the change to the user; 

d) while on-line, receiving, by the user, the indication of the change; and 

e) determining, by the user, newly updated public key certificate based on the 
indication of the change. 



providing, by the user, an indication of a local replica of public key certificate to the 
server while on-line with the server; I y\^^ J 

determining, by the server, whether the local replica o^e public key certificate is 
consistent with current public key certificate of the at leak^ne subscriber subject; and 



1 6. The method of claim 1 5 futther comprises: 
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when the local replica of the public key i^rtifiaate is inconsistent with the current public 
key certificate, providing, by the server (an\^d/^ation of a difference between the local 
replica of the public key certificate and the curr^t public key certificate. 
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17. A user of secure coramunication system, wherein the user comprises: 
processing unit; and \ 

memory operably coupled to the processing unit, wherein the memory stores 
programming instructions that, when read by the processing unit, causes the processing 
unit to (a) from time to time, proviqe pubUc key certificate update subscription 
information to a server; (b) provide m indication of a local replica of current public key 
certificate to the server while on-line with the server; (c) receive updated public key 
certificate from the serve when the updaied public key certificate is inconsistent with the 
local replica of the current public key cerMficate; and (d) while on-line, receive newly 
updated public key certificate from the server, wherein the newly updated public key 
certificate relates to information of interest afe identified in the public key certificate 
update subscription information. \ 

18. The user of claim 17 further comprises, wMhimthe memory, programming 
instructions that, when read by the processing\init,Vafuses the processing unit to 
acknowledge receipt of the indication of the updated public key certificate. 

19. The user of claim 17 fiirther comprises, within tHe memory, programming 
instructions that, when read by the processing unit, cause^the processing unit to provide 
the public key certificate update subscription information tainclude identity of at least 
one subscriber subject and a public key of the at least one subiscriber subject. 

20. The user of claim 17 fiirther comprises, within the memoW, programming 
instructions that, when read by the processing unit, causes the processing unit to provide 
the public key certificate update subscription information to include^t least one of: 
signature public key certificate of at least one subscriber subject and an encryption public 
key certificate of the at least one subscriber subject. \ 
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2 1 . The user of claim 1 7 furmer comprises, within the memory, programming 
instructions that, when read by th^rocessing unit, causes the processing unit to receive, 
as the indication of the newly updated public key certificate, at least one of: a new public 
key certificate for a subscriber subject! a revocation of a public key certificate of the 
subscriber subject, a change to the publiV key certificate of the subscriber subject. 

22. The user of claim 17 further comprises, within the memory, programming 
instructions that, when read by the processii/g kiiT^bauses the processing unit to provide 

the indication of the local replica as at least \ne of:/a\ppy of the current public key 
certificate and a message indicating the current'pub^ic key certificate 
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23. The user of claim 17 further comprises, within the memory, programming 
instructions that, when read by the processing unit, cause\ the processing unit to receive 
the updated public key certificate as at least one of: updatesyto the current public key 
certificate and a message regarding updates to the current puo^^ic key certificate. 
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24. A server of secure communication system, wherein the server comprises: 

processing unit; and 

5 memory operably coupled to the processing unit, wherein the memory stores 

programming instructions that, when read by the processing unit, causes the processing 
unit to (a) from time to time, receive a public key certificate update subscription 
information from a user, wherein the public key certificate update subscription 
information identifies at least one subscriber subject and a public key of the at least one 
10 subscriber subject; (b) monitor public key certificate of the at least one subscriber 

subject; and (c) provide an indication of a change to the user when the change occurs to 
the public key certificate. 

25. The server of claim 24 fiirth^r comprises, within the memory, programming 
Q \. 

*p 15 instructions that, when read by the processing unit, causes the processing unit to (i) 
vj 

receive an indication of a user replica oKthe public key certificate from the user, when the 

W user is on-line; (ii) determine whether th^ser replica of the public key certificate is 

t \ 

M consistent with server replica of the public Rey certificate; and (iii) provide an indication 

ry \ 

Q of the server replica of the public key certific^Lene^the user when the user replica of the 

t» f\ K 

*^ 20 public key certificate is inconsistent with the ieWer replica of the public key certificate. 



26. The server of claim 25 further comprises, wUhin the memory, programming 
instructions that, when read by the processing unit, causes the processing unit to provide 
the indication as at least one of: the server replica of the^urrent public key certificate and 
25 an encoded message identifying differences between the ulser replica of the public key 
certificate and the server replica of the public key certificateN 



27. The server of claim 24 further comprises, within the memory, programming 
instructions that, when read by the processing unit, causes the processing unit to provide 
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the indication as at least one of: an encoded message identifying the change to the public 
key certificate of the at least one subscriber subject. 

28. The server of claim 24 further comprises, within the memory, programming 
instructions that, when read by the processing unit, causes the processing unit to monitor 
the public key certificate by pulling the public key certificate of the at least one subscriber 
subject from a certification authority. 

29. The server of claim 24 further comprises, within the memory, programming 
instructions that, when read by the processing unit, causes the processing unit to receive 
information to change the public key certificate of the at least one subscriber subject. 

30. The server of claim 24 further comprises, within the memory, programming 
instructions that, when read by the processing unit, causes the processing unit to receive 
from an end-user or system administrator the public key certificate update subscription 
information. 



